apisix-website icon indicating copy to clipboard operation
apisix-website copied to clipboard
verified publisher icon apache

The Content-Security-Policy header must not be overridden

Open sebbASF opened this issue 2 months ago • 6 comments

https://github.com/apache/apisix-website/blob/0435d6f0eb5b8c674e0d5acb36eb705f92a7c425/.htaccess#L21

The Content-Security-Policy header must not be overridden.

There is now a standard way to add local exceptions to the CSP:

https://infra.apache.org/tools/csp.html

Please update the .htaccess file accordingly.

sebbASF avatar Oct 25 '25 16:10 sebbASF